PT-2023-26809 · Jenkins · Jenkins Gradle Plugin+1
Published
2023-07-26
·
Updated
2023-07-31
·
CVE-2023-39152
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Jenkins Gradle Plugin version 2.8
Description
The issue is related to an always-incorrect control flow implementation that may result in credentials not being masked in the build log under certain circumstances.
Recommendations
For Jenkins Gradle Plugin version 2.8, update to a version that includes the fix for this issue to ensure credentials are properly masked in the build log.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jenkins
Jenkins Gradle Plugin